DDNS allow-update on forward and reverse maps?

Kevin Darcy kcd at daimlerchrysler.com
Sat Jan 6 01:52:53 UTC 2001 

I assume you mistyped when you said "inaddr.arpa", since it should be
in-addr.arpa.

My guess is that the 0.168.192.in-addr.arpa zonefile has some sort of
syntax error in it. Because of the error, it doesn't load properly and the
master won't consider itself authoritative for the zone or accept updates
for it. Look in the logs for load errors. Failing that, just post the
zonefile.


- Kevin

jmccanta at my-deja.com wrote:

> I am having a similar dilema.  My /etc/named.conf (below) has both the
> name-to-address and address-to-name zones with an allow-update clause.
> However, the reverse lookup does not update.  In the /var/adm/messages,
> it says "unapproved update from [192.168.0.1].1127 for
> 0.168.192.inaddr.arpa".  The named.conf follows.  Thanks for looking at
> this...
> -----------------------------------------------------
> options {
>         directory "/var/named";
>         forward first;
>         forwarders {
>         xxx.xx.xx.x;    [note: masked out for posting]
>         xxx.xxx.xxx.x;
>         };
> };
>
> logging {
>         category lame-servers { null; };
>         category cname { null; };
> };
>
> zone "." in {
>         type hint;
>         file "root.hints";
> };
>
> zone "0.0.127.in-addr.arpa" in {
>         type master;
>         file "pz/127.0.0";
> };
>
> zone "cht.private" {
>         notify no;
>         type master;
>         file "pz/cht.private";
>         allow-update { 192.168.0.1; };
> };
>
> zone "0.168.192.in-addr.arpa" {
>         notify no;
>         type master;
>         file "pz/192.168.0"
>         allow-update { 192.168.0.1; }
> };
> -----------------------------------------------------------
>
> In article <935g4m$3ds at pub3.rc.vix.com>,
>   Barry Margolin <barmar at genuity.net> wrote:
> > In article <9359gn$1b9 at pub3.rc.vix.com>,
> > Douglass, Gordon <Gordon.Douglass at netapp.com> wrote:
> > >After consulting the V3 DNS and Bind book. I noticed that
> > >the allow-update section only specifies that the forward
> > >map needs to have allow-update for updates.
> >
> > Where does it say that?  The examples only show updating the forward
> > domain, but that doesn't mean that other domains can't be updated.
> The
> > last full sentence on page 231 says: "... DHCP servers that assign IP
> > addresses automatically to computers, and then need to register the
> > resulting name-to-address and address-to-name mappings."  Address-to-
> name
> > mappings are in reverse domains, so this implies that they need to
> update
> > these domains.
> >
> > --
> > Barry Margolin, barmar at genuity.net
> > Genuity, Burlington, MA
> > *** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to
> newsgroups.
> > Please DON'T copy followups to me -- I'll assume it wasn't posted to
> the group.
> >
> >
>
> Sent via Deja.com
> http://www.deja.com/

More information about the bind-users mailing list